Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/NUOpqs2xBWzLYqLIbCoKOLi0gHo.roa
File: NUOpqs2xBWzLYqLIbCoKOLi0gHo.roa (raw, json)
Hash identifier: hD+NkYlpqefhgyqT7pyV42L6OnrcpvQQUnTNPAg5Ehw=
Subject key identifier: 35:43:A9:AA:CD:B1:05:6C:CB:62:A2:C8:6C:2A:0A:38:B8:B4:80:7A
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0A4D
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/NUOpqs2xBWzLYqLIbCoKOLi0gHo.roa
Signing time: Wed 01 Jun 2022 03:58:47 +0000
ROA not before: Wed 01 Jun 2022 03:58:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131613
IP address blocks: 2402:c340:55::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2637 (0xa4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Jun 1 03:58:47 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3543A9AACDB1056CCB62A2C86C2A0A38B8B4807A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2e:fa:2b:b9:ad:28:35:79:d0:a4:ef:75:0e:
d7:65:09:5a:fd:ea:3c:00:f7:ad:c8:6d:b6:5d:0a:
13:ac:c9:a9:45:41:b9:49:bc:b6:02:69:58:d4:d0:
b0:5f:d6:19:41:ec:ed:65:ab:96:59:76:23:eb:47:
a9:ba:b1:97:dd:87:69:cd:25:33:e5:70:20:1e:70:
68:63:ae:d2:c2:48:28:a9:bf:ee:af:8b:09:f5:60:
f7:48:71:1a:89:93:6e:92:be:3d:87:e0:2d:05:6f:
eb:5f:52:41:56:87:44:59:8c:50:cf:31:b1:a0:0c:
58:1a:9e:03:d1:10:c4:c6:d9:4a:89:75:34:90:5d:
d1:be:0a:ed:10:52:49:40:40:1a:53:e8:9f:ec:25:
73:68:7e:81:d2:95:32:31:39:c8:e2:c9:75:58:b5:
35:37:19:89:bc:e3:de:9e:d6:32:95:27:fa:f4:31:
52:cf:81:77:d3:7c:35:85:5b:8e:52:79:d2:9a:d0:
3d:dc:0d:6e:bf:52:76:ed:74:ca:35:da:8e:d4:be:
e9:7a:98:bf:c4:b2:d3:da:90:12:0b:c9:24:87:ef:
ad:37:5a:78:89:c4:38:bd:ec:1e:b2:32:22:2d:9b:
92:bd:ff:60:73:b1:72:fa:76:38:a2:a8:3b:3a:f3:
6c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:43:A9:AA:CD:B1:05:6C:CB:62:A2:C8:6C:2A:0A:38:B8:B4:80:7A
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/NUOpqs2xBWzLYqLIbCoKOLi0gHo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:c340:55::/48
Signature Algorithm: sha256WithRSAEncryption
37:c8:b8:80:5a:e4:38:a4:11:43:61:b2:5b:ae:bc:27:3c:0a:
19:d8:94:ff:93:2d:00:86:b0:e5:0c:d9:14:24:2a:6b:46:19:
56:8f:5b:97:2a:e9:b8:f3:22:d7:e6:b3:12:6b:d1:df:9c:38:
0b:4c:4d:23:e6:e7:d3:8f:17:c8:fa:06:d8:79:8b:e4:be:c8:
01:07:a3:46:8e:1c:14:54:5d:ee:c7:d6:b3:49:fa:59:4a:d3:
1e:7e:cc:75:0f:26:00:88:2c:db:64:7f:41:0f:4d:cd:e7:79:
01:8d:0c:d0:c9:85:18:81:a0:ae:70:62:9d:14:04:1f:2f:d1:
2f:ee:23:ae:62:3d:e6:ad:41:38:a0:c1:14:41:d7:e5:75:b7:
ff:0b:23:61:81:4c:ac:28:5f:d1:65:c2:87:91:89:c3:20:57:
eb:52:3d:99:ef:8a:ac:fd:0b:ad:1c:ce:f7:d7:6d:b8:d8:bd:
52:4d:47:3c:e9:fe:9d:1e:09:3c:a7:69:32:68:ca:f7:61:9a:
c7:2e:71:5a:f2:7d:5e:66:f8:08:71:b1:ef:7a:76:6a:42:e3:
f3:7b:f7:c7:bc:14:8e:63:ac:4a:91:ab:79:49:a9:17:53:c7:
8b:59:aa:5e:c5:3b:fe:a9:b6:c6:bb:1c:46:47:b9:53:e5:a6:
d0:71:3e:d8
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICCk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1
NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yMjA2MDEw
MzU4NDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM1NDNBOUFBQ0RCMTA1
NkNDQjYyQTJDODZDMkEwQTM4QjhCNDgwN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmLvorua0oNXnQpO91DtdlCVr96jwA963IbbZdChOsyalFQblJ
vLYCaVjU0LBf1hlB7O1lq5ZZdiPrR6m6sZfdh2nNJTPlcCAecGhjrtLCSCipv+6v
iwn1YPdIcRqJk26Svj2H4C0Fb+tfUkFWh0RZjFDPMbGgDFgangPREMTG2UqJdTSQ
XdG+Cu0QUklAQBpT6J/sJXNofoHSlTIxOcjiyXVYtTU3GYm8496e1jKVJ/r0MVLP
gXfTfDWFW45SedKa0D3cDW6/UnbtdMo12o7Uvul6mL/EstPakBILySSH7603WniJ
xDi97B6yMiItm5K9/2BzsXL6djiiqDs682xTAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUNUOpqs2xBWzLYqLIbCoKOLi0gHowHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB
76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI
RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL05VT3BxczJ4Qld6
TFlxTEliQ29LT0xpMGdIby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkAsNAAFUwDQYJKoZIhvcNAQELBQADggEBADfIuIBa5DikEUNhsluuvCc8
ChnYlP+TLQCGsOUM2RQkKmtGGVaPW5cq6bjzItfmsxJr0d+cOAtMTSPm59OPF8j6
Bth5i+S+yAEHo0aOHBRUXe7H1rNJ+llK0x5+zHUPJgCILNtkf0EPTc3neQGNDNDJ
hRiBoK5wYp0UBB8v0S/uI65iPeatQTigwRRB1+V1t/8LI2GBTKwoX9FlwoeRicMg
V+tSPZnviqz9C60czvfXbbjYvVJNRzzp/p0eCTynaTJoyvdhmscucVryfV5m+Ahx
se96dmpC4/N798e8FI5jrEqRq3lJqRdTx4tZql7FO/6ptsa7HEZHuVPlptBxPtg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org